$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: rrAECPBHWvuwvtTox4JxzNzwPlMnk4eYoV2tOyc7YVs= Subject key identifier: E4:E0:FD:0D:0E:10:AD:A7:AD:78:63:65:CD:EF:57:69:6D:F4:E2:51 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 020B Signing time: Wed 13 May 2026 03:26:36 +0000 Manifest this update: Wed 13 May 2026 03:26:36 +0000 Manifest next update: Wed 20 May 2026 03:26:36 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: Ejc2dLr8oFV81Obku4AXLPelSyFyVwzR5gs9pyeCTNQ=) 2: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: CKjWrRKFrq5wIXerALs28X5SJv1uenx7ZdloeFQoUHo=) 3: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: r/B/wTWM1e+RbFQV+OxoufBd8XhZQMs6+SrSBQGZEm0=) 4: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: sT56QjRFMA5RYNrfwK84aeqd2CWRIQx/z7cMGwk6r48=) 5: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: d0JlKivvI0UuN/+g7FjPgsMv6qjwloa3O1BziCQ3cTE=) 6: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: yxoJxjt522RCtypxdpCWh8Ki8MQz+o9DlkQu175uTk8=) 7: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: kvLOqAvejoloIcBp8iOod+XLqcMm6Km2ICEQUCNEODY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 03:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: May 13 03:26:36 2026 GMT Not After : May 20 03:26:36 2026 GMT Subject: CN=6a03ef6c-0ea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5d:18:01:d6:a7:1f:70:d2:7d:d3:aa:41:75: 1b:bd:f5:5f:3c:4c:77:7d:ae:f5:6b:17:38:c1:3d: cd:56:37:8e:43:97:b1:c2:b0:60:31:ce:af:47:dc: b5:7b:e7:86:8d:e0:63:eb:a8:dd:59:78:d7:96:68: 77:40:09:c5:56:d7:a1:0b:cf:62:34:0f:e7:4e:89: 91:b3:d3:bb:8e:53:f1:e8:c5:50:2a:96:0e:28:3b: b4:c3:b5:f9:3c:e2:dd:c6:e1:27:e8:d0:64:03:01: 14:5d:3b:73:15:92:19:43:39:d0:48:a3:0c:b9:22: ab:41:7f:b1:6f:83:71:d9:af:fd:5d:34:4b:90:5b: 05:ba:9c:af:fe:ba:2a:fa:35:25:d6:35:0a:e8:d1: cf:4e:2d:55:c6:d7:ab:9f:04:01:3d:c8:c6:35:ff: 9f:93:31:a4:2d:2d:9e:72:5c:09:60:6e:d4:31:01: 1a:43:be:68:00:8a:2d:90:54:56:66:ef:3b:05:62: 05:cc:13:b9:ac:0e:c5:fa:4b:52:92:2c:15:47:7a: 70:79:09:64:3d:d5:a4:c6:7a:52:29:43:04:4a:1f: fd:76:a0:e5:35:7d:81:8a:ad:95:91:c9:5e:24:d4: 90:aa:06:2a:93:a2:4f:92:39:98:06:ce:3e:87:16: 4e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E0:FD:0D:0E:10:AD:A7:AD:78:63:65:CD:EF:57:69:6D:F4:E2:51 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:c0:56:77:be:43:5b:b5:92:69:0a:ed:10:88:5e:fc:82:ae: c7:6b:88:83:48:86:44:e8:2f:d2:26:8b:cf:e5:ee:9d:d4:5a: ab:d8:68:67:5d:5f:6f:cd:7e:7d:80:12:60:47:40:3b:29:82: 54:75:4e:b1:c3:1f:ae:66:03:c1:9f:01:51:a8:9f:38:b2:34: e2:ba:f4:6b:86:2b:be:06:1b:4a:3f:4c:1b:08:c8:5c:99:a7: 49:ab:31:cb:67:3f:8a:dd:3f:44:87:30:28:02:5a:99:8e:c1: cb:1d:3c:e8:ae:52:88:a1:49:69:15:e4:10:f0:55:ac:e0:bf: d4:e6:a6:58:63:8f:60:a3:34:94:a7:c5:1f:6c:f2:17:14:34: 36:3d:7c:07:ee:dc:9b:89:3c:4c:03:50:67:49:d2:1b:51:e6: 80:24:4d:29:fe:08:95:b3:e2:d8:29:e1:e6:32:ef:10:c1:d7: b0:3d:da:ee:f3:43:c5:06:45:39:9e:c1:8a:82:dd:ec:6c:b7: 7f:10:2a:7b:23:c0:51:31:75:d6:30:42:23:1a:4d:86:c9:cc: 45:53:43:a5:e5:f3:7f:7e:a5:0a:ed:20:2c:ae:62:82:55:96: a3:3e:68:d5:6d:d1:0a:4f:4c:81:a3:6f:f3:db:96:5b:61:9a: be:e3:3a:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjYwNTEzMDMyNjM2WhcNMjYwNTIwMDMyNjM2WjAYMRYwFAYD VQQDEw02YTAzZWY2Yy0wZWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmF0YAdanH3DSfdOqQXUbvfVfPEx3fa71axc4wT3NVjeOQ5exwrBgMc6vR9y1 e+eGjeBj66jdWXjXlmh3QAnFVtehC89iNA/nTomRs9O7jlPx6MVQKpYOKDu0w7X5 POLdxuEn6NBkAwEUXTtzFZIZQznQSKMMuSKrQX+xb4Nx2a/9XTRLkFsFupyv/roq +jUl1jUK6NHPTi1VxternwQBPcjGNf+fkzGkLS2eclwJYG7UMQEaQ75oAIotkFRW Zu87BWIFzBO5rA7F+ktSkiwVR3pweQlkPdWkxnpSKUMESh/9dqDlNX2Biq2Vkcle JNSQqgYqk6JPkjmYBs4+hxZOSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOTg/Q0O EK2nrXhjZc3vV2lt9OJRMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARsBWd75DW7WSaQrtEIhe/IKux2uIg0iGROgv0iaLz+XundRaq9hoZ11fb81+ fYASYEdAOymCVHVOscMfrmYDwZ8BUaifOLI04rr0a4YrvgYbSj9MGwjIXJmnSasx y2c/it0/RIcwKAJamY7Byx086K5SiKFJaRXkEPBVrOC/1OamWGOPYKM0lKfFH2zy FxQ0Nj18B+7cm4k8TANQZ0nSG1HmgCRNKf4IlbPi2Cnh5jLvEMHXsD3a7vNDxQZF OZ7BioLd7Gy3fxAqeyPAUTF11jBCIxpNhsnMRVNDpeXzf36lCu0gLK5iglWWoz5o 1W3RCk9MgaNv89uWW2GavuM62Q== -----END CERTIFICATE-----Generated at Wed May 13 12:30:00 2026 by rpki-client